Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/EMj09N9PBvktDC9deLfVa5aaDpQ.roa
File: EMj09N9PBvktDC9deLfVa5aaDpQ.roa (raw, json)
Hash identifier: Ysie09btexBbqyseuyD+YN3DpFU6R6SF2xmBa0N7LLc=
Subject key identifier: 10:C8:F4:F4:DF:4F:06:F9:2D:0C:2F:5D:78:B7:D5:6B:96:9A:0E:94
Certificate issuer: /CN=3296d853639bc0192994293ebde09805d2d622a4
Certificate serial: 0715497A
Authority key identifier: 32:96:D8:53:63:9B:C0:19:29:94:29:3E:BD:E0:98:05:D2:D6:22:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MpbYU2ObwBkplCk-veCYBdLWIqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/EMj09N9PBvktDC9deLfVa5aaDpQ.roa
Signing time: Sat 01 Jan 2022 01:58:51 +0000
ROA not before: Sat 01 Jan 2022 01:58:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62009
IP address blocks: 95.214.88.0/22 maxlen: 22
185.51.136.0/22 maxlen: 22
2a0f:8a80::/29 maxlen: 29
2a04:c240::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118835578 (0x715497a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3296d853639bc0192994293ebde09805d2d622a4
Validity
Not Before: Jan 1 01:58:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10c8f4f4df4f06f92d0c2f5d78b7d56b969a0e94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:63:df:d1:d9:30:03:db:d3:4e:90:1c:27:47:
30:f6:bf:4e:9a:56:d8:14:5f:24:9c:f8:20:a8:dd:
f9:ba:67:33:e9:5b:04:4d:0d:80:0b:51:15:a5:a5:
b0:0d:90:e3:f8:89:fd:7f:e9:18:12:63:92:ce:42:
95:21:82:ad:35:19:83:84:c7:d0:bc:20:d4:aa:2e:
5e:d7:79:ad:78:62:a1:ef:b8:69:b7:82:dc:e7:6a:
57:49:0d:ef:4e:df:a2:f5:f1:aa:77:78:03:c6:dc:
b3:f5:00:a6:c4:d8:6a:d6:15:59:22:1a:82:57:36:
29:21:c7:b2:c2:57:00:ed:02:fe:4d:97:af:5d:8d:
0b:d1:74:1a:71:9f:06:aa:d2:e8:0c:60:84:ea:e2:
81:d5:15:36:de:3f:f4:73:b9:af:61:53:42:2c:f0:
ab:89:a4:5d:1d:9e:dd:ab:00:2f:81:82:51:cd:f0:
af:62:b6:7c:c2:fe:c8:b3:56:e7:d1:4e:4c:95:90:
03:dc:7d:5a:15:4b:54:c4:71:1c:c8:6e:3a:1b:fd:
5e:43:9c:f0:19:20:8f:34:47:03:e0:2d:e5:39:12:
f0:f8:25:fb:39:a9:14:02:94:9c:ca:f5:db:07:13:
aa:cc:75:a5:04:6e:9f:6e:0b:33:bb:67:37:94:fc:
13:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:C8:F4:F4:DF:4F:06:F9:2D:0C:2F:5D:78:B7:D5:6B:96:9A:0E:94
X509v3 Authority Key Identifier:
keyid:32:96:D8:53:63:9B:C0:19:29:94:29:3E:BD:E0:98:05:D2:D6:22:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MpbYU2ObwBkplCk-veCYBdLWIqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/EMj09N9PBvktDC9deLfVa5aaDpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.88.0/22
185.51.136.0/22
IPv6:
2a04:c240::/29
2a0f:8a80::/29
Signature Algorithm: sha256WithRSAEncryption
3c:0b:43:a4:fc:21:d1:c1:6e:0b:0e:75:b1:a8:b9:33:24:bf:
61:b8:01:1a:db:15:a5:67:ba:8f:3d:9f:de:ae:c8:b7:96:8d:
65:81:07:8b:e2:cb:8e:34:e7:54:27:a1:c5:61:d5:36:dd:ff:
f1:f3:a9:38:d3:bf:2e:18:d0:0d:3a:cd:09:98:56:43:16:1f:
a2:b6:b3:fb:81:17:8f:d4:2f:69:1b:17:75:b8:88:2c:94:91:
a5:d1:a1:81:bd:a0:84:bb:f3:20:42:7e:76:65:e6:aa:8a:10:
2d:39:b1:45:d2:91:5c:0f:25:85:01:3e:53:b2:8e:05:b1:59:
c6:88:02:3c:b6:b0:11:aa:ea:ee:a2:4e:23:d0:ee:fc:2f:b8:
42:2d:16:84:f1:50:ce:ef:37:d5:41:ed:d4:ce:a5:fb:33:19:
71:45:99:09:e6:49:74:c4:35:5b:70:fa:b3:64:1a:ab:4c:4d:
7e:b4:b9:aa:af:47:43:2b:9c:ac:60:a7:ff:0b:2d:29:d2:a0:
ff:57:5b:b1:8f:47:63:0d:dc:24:d5:46:10:51:b2:80:fc:58:
7b:64:6b:d1:be:9f:db:38:43:c8:d6:26:f1:17:a9:30:88:22:
0e:82:e2:4a:25:34:33:58:2a:11:c3:35:ab:71:82:5e:d7:39:
5c:d8:a7:5c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:34 2024 by rpki-client on console-fra.rpki-client.org